d97c4a27c15e58a2ce96e1b7bf2bc78dfcfa71673b904d08b261ad8e8c25215c | Triage

Sharing

General

Target

5ad3a3643c22d7fcf42a800ca9fba629_JaffaCakes118
Size

92KB
Sample

240719-hagclazgkb
MD5

5ad3a3643c22d7fcf42a800ca9fba629
SHA1

32ea40dd7ce53b2341da906e306115fe59e8bce9
SHA256

d97c4a27c15e58a2ce96e1b7bf2bc78dfcfa71673b904d08b261ad8e8c25215c
SHA512

92d199ae6b3d0d23f357a11b1406decaee58996a1eed424f0aba4aab8bf4369050af03c45f7cf2b0e3d9cbe8b163d791c2e96a0fccce3b4aa8990cd7f41f89ba
SSDEEP

384:sqDRr6PGpcohnDRr6PGpco/BXGUvn2Z6nOmHT8myvc0Uz1D9pQBY2TAKYtax:L1yfm1yfbQ2cHT81vc1AY2fx

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5ad3a3643c22d7fcf42a800ca9fba629_JaffaCakes118
- Size
  
  92KB
- MD5
  
  5ad3a3643c22d7fcf42a800ca9fba629
- SHA1
  
  32ea40dd7ce53b2341da906e306115fe59e8bce9
- SHA256
  
  d97c4a27c15e58a2ce96e1b7bf2bc78dfcfa71673b904d08b261ad8e8c25215c
- SHA512
  
  92d199ae6b3d0d23f357a11b1406decaee58996a1eed424f0aba4aab8bf4369050af03c45f7cf2b0e3d9cbe8b163d791c2e96a0fccce3b4aa8990cd7f41f89ba
- SSDEEP
  
  384:sqDRr6PGpcohnDRr6PGpco/BXGUvn2Z6nOmHT8myvc0Uz1D9pQBY2TAKYtax:L1yfm1yfbQ2cHT81vc1AY2fx
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2